使ç¨æ ç¾æ¶ï¼ä½ å¯è½ä¼å¿½ç¥çä¸ä¸ªå®å ¨é®é¢
å¨ä¸ä¸ªæ°çªå£ä¸æå¼é¾æ¥æ¯å端å¼åä¸ä¸ä¸ªå¾å¸¸è§çé»è¾ï¼å®å¯ä»¥å°ç¨æ·å¼å¯¼å°ä¸ä¸ªæ°çååãæ们å¯ä»¥ç¨target='_blank'æ¥å®ç°è¿ä¸ªåè½ãææ¢è¯å®ï¼æ¯ä¸ªäººé½ä¼å¨ä»çæ个项ç®ä¸ä½¿ç¨è¿target='_blankï¼ä½æ¯æä¸ç¡®å®æ¯å¦æ¯ä¸ªäººé½ç¥éè¿ç§ç¨æ³ç缺é·ã
å½ä¸ä¸ªå¤é¨é¾æ¥ä½¿ç¨äºtarget='_blank'çæ¹å¼ï¼è¿ä¸ªå¤é¨é¾æ¥ä¼æå¼ä¸ä¸ªæ°çæµè§å¨tabãæ¤æ¶ï¼æ°é¡µé¢ä¼æå¼ï¼å¹¶ä¸ååå§é¡µé¢å ç¨åä¸ä¸ªè¿ç¨ãè¿ä¹æå³çï¼å¦æè¿ä¸ªæ°é¡µé¢æä»»ä½æ§è½ä¸çé®é¢ï¼æ¯å¦æä¸ä¸ªå¾é«çå è½½æ¶é´ï¼è¿ä¹å°ä¼å½±åå°åå§é¡µé¢ç表ç°ãå¦æä½ æå¼çæ¯ä¸ä¸ªååç页é¢ï¼é£ä¹ä½ å°å¯ä»¥å¨æ°é¡µé¢è®¿é®å°åå§é¡µé¢çææå
容ï¼å
æ¬document对象(window.opener.document)ãå¦æä½ æå¼çæ¯ä¸ä¸ªè·¨åç页é¢ï¼ä½ è½ç¶æ æ³è®¿é®å°documentï¼ä½æ¯ä½ ä¾ç¶å¯ä»¥è®¿é®å°location对象ã
è¿æå³çï¼å¦æä½ å¨ä½ çç«ç¹æè
æç« ä¸ï¼åµå
¥äºéè¿æ°çªå£æå¼ä¸ä¸ªæ°é¡µé¢çé¾æ¥ï¼è¿ä¸ªæ°é¡µé¢å¯ä»¥ä½¿ç¨window.openerï¼å¨ä¸å®ç¨åº¦ä¸æ¥ä¿®æ¹åå§é¡µé¢ã
举个ä¾åï¼
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="ie=edge">
<title>Document</title>
</head>
<body>
<H2>a页é¢</H2>
<a href="b.html" target="_blank" >ç¹æè·³å°b页é¢</a>
</body>
</html><!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta http-equiv="X-UA-Compatible" content="ie=edge">
<title>Document</title>
</head>
<body>
<h2>b页é¢</h2>
<script>window.opener.location.href='https://www.baidu.com/?tn=48021271_12_hao_pg'</script>
</body>
</body>
</html>å
¶ä¸å¨a.htmlä¸æ个è¶
é¾æ¥ï¼ç¹å»åæå¼æ°çtab页ï¼ç¥å¥çåç°åtab页已ç»åæäºç¾åº¦é¡µé¢ãåå æ¯ä½¿ç¨target=_blankæå¼æ°ççªå£æ¶ï¼èµäºäºæ°ççªå£ä¸äºæéå¯ä»¥æä½åtab页ï¼å
¶ä¸window.locationå°±æ¯ä¸ä¸ªãä¸ä½¿ç¨ rel=noopenerå°±æ¯è®©ç¨æ·æ´é²å¨éé±¼æ»å»ä¸ã
å æ¤ï¼
å½æ¨ç页é¢é¾æ¥è³ä½¿ç¨ target="_blank" çå¦ä¸ä¸ªé¡µé¢æ¶ï¼æ°é¡µé¢å°ä¸æ¨çå页é¢å¨åä¸ä¸ªè¿ç¨ä¸è¿è¡ã å¦ææ°é¡µé¢æ£å¨æ§è¡å¼éæ大ç JavaScriptï¼æ¨çå页é¢æ§è½å¯è½ä¼åå½±åã
æ¤å¤ï¼target="_blank" ä¹æ¯ä¸ä¸ªå®å ¨æ¼æ´ãæ°ç页é¢å¯ä»¥éè¿ window.opener 访é®æ¨ççªå£å¯¹è±¡ï¼å¹¶ä¸å®å¯ä»¥ä½¿ç¨ window.opener.location = newURL å°æ¨ç页é¢å¯¼èªè³ä¸åçç½åã
é£ä¹é®é¢æ¥äºï¼æ们å¦ä½é»æ¢è¿ç§æ
åµçåçå¢ï¼å¨ææ使ç¨target=_blankæå¼æ°é¡µé¢çé¾æ¥ä¸ï¼å ä¸rel="noopener"ã
使ç¨rel='noopener'çå ¼å®¹æ§
rel=noopener
为äºé²æ¢window.opener被滥ç¨ï¼å¨ä½¿ç¨targrt=_blankæ¶éè¦å ä¸rel=noopener
<a href="www.baidu.com" target="_blank" rel="noopener" >rel=norefferrerï¼åå¨å¼ç«¯ï¼
å¨èæµè§å¨ä¸ï¼ä½ å¯ä»¥ä½¿ç¨rel=noreferrerå±æ§ï¼å
·æåæ ·çææãä½æ¯ï¼è¿æ ·ä¹ä¼é»æ¢Referer header被åéå°æ°é¡µé¢ã
rel=noopeneræ¯æchrome49åopera36ï¼ä¸æ¯æç«çï¼ä¸ºäºå
¼å®¹éè¦å ä¸rel=noreferrer
<a href="b.html" target="_blank" rel="noopener norefferrer" >使ç¨äºrel=noopener以åï¼å½ä¸ä¸ªæ°é¡µé¢éè¿ä¸ä¸ªé¾æ¥æå¼åï¼æ°é¡µé¢ä¸çæ¶æJavaScript代ç å°æ æ³éè¿window.openeræ¥è®¿é®å°åå§é¡µé¢ãè¿å°ä¿è¯æ°é¡µé¢è¿è¡å¨ä¸ä¸ªåç¬çè¿ç¨éã
å¨ä¸é¢çä¾åä¸ï¼ä½¿ç¨äºrel="noreferrer" ï¼å½ä¸ä¸ªç¨æ·ç¹å»äºè¿ä¸ªè¶
é¾æ¥è¿å
¥å°æ°é¡µé¢åï¼æ°é¡µé¢æ¿ä¸å°referrerä¿¡æ¯ãè¿å°æå³çï¼æ°é¡µé¢ä¸ç¥éç¨æ·æ¯ä»åªéæ¥çã
å¦æä½ éè¿JavaScriptä¸çwindow.openæå¼ä¸ä¸ªé¡µé¢çè¯ï¼ä¸ææ说çé½éç¨ï¼å ä¸ºä½ ä¹æ¯æå¼äºä¸ä¸ªæ°ççªå£ãå¨è¿ç§æ
åµä¸ï¼ä½ ä¸å¾ä¸æ¸
é¤æopener对象ï¼
var newWindow = window.open();
newWindow.opener = null;
å¨æçæ¥ï¼ä½¿ç¨ç¬¬ä¸ç§è§£å³æ¹æ¡(å¨æ¯ä¸ä¸ªtarget="_blank"çé¾æ¥ä¸å ä¸rel="noopener")æ¯æ²¡æä»ä¹ææ¾çåå¤çãè¿ä¸ªé®é¢è¡¨æï¼å¨ä½ çç½é¡µå®å
¨æ§ä¸æ¾å°æ¼æ´æ¯å¤ä¹ç容æã
æ»ç»
主è¦ä»ç»äºå¨ä½¿ç¨<a target="_blank">æ ç¾æå¼ä¸ä¸ªæ°çªå£è¿ç¨ä¸çå®å
¨é®é¢ãæ°é¡µé¢ä¸å¯ä»¥ä½¿ç¨window.openeræ¥æ§å¶åå§é¡µé¢ãå¦ææ°è页é¢ååï¼é£ä¹å¨æ°é¡µé¢ä¸å¯ä»¥ä»»ææä½åå§é¡µé¢ãå¦ææ¯ä¸ååï¼æ°é¡µé¢ä¸ä¾ç¶å¯ä»¥éè¿window.opener.locationï¼è®¿é®å°åå§é¡µé¢çlocation对象ã
è¯æ³ä¸ä¸ï¼ä½ å¨èªå·±ça页é¢ä¸ï¼éè¿<a target="_blank" href="http://b.com">æå¼æ°çªå£ï¼è·³è½¬å°äºb页é¢ï¼æ¤å»b页é¢ä¸æä¸æ®µä»£ç window.opener.location = 'http://c.com'ãè¿æ¶ï¼a页é¢å°±ä¼èªå¨è·³è½¬å°c页é¢ãå¦æè¿ä¸ªc页é¢æ¯ä¸ä¸ªåa页é¢é¿å¾ä¸æ ·çéé±¼ç½ç«ï¼é£ä¹ç¨æ·å¯è½å°±ä¸æäºã
解å³æ¹æ³å°±æ¯ï¼å¨å¸¦ætarget="_blank"ç<a>æ ç¾ä¸ï¼å ä¸rel="noopener"å±æ§ãå¦æ使ç¨window.opençæ¹å¼æå¼é¡µé¢ï¼å°opener对象置为空ãè¿æ ·çå¯ä½ç¨æ¯ï¼å¨æäºä½çæ¬æµè§å¨ä¸ï¼æ°é¡µé¢ä¸æ¿ä¸å°refererä¿¡æ¯ã
è¥æä¸è¶³è¯·å¤å¤ææï¼å¸æç»æ¨å¸¦æ¥å¸®å©ï¼